JOIN BREACHFORUMS TELEGRAM
About GraphQL Exploitation
by gayass - Tuesday March 19, 2024 at 04:48 AM
Breached
Member
Posts: 38
Threads: 6
Joined: Feb 2024
Reputation: 0
#1
Mar 19, 2024, 04:48 AM (This post was last modified: Mar 19, 2024, 04:49 AM by gayass.)
So, i'm trying to find a way to make my targets API show me more information about its GraphQL configs and stuff, but introspection is off, so my job became a little more difficult, so i wanted help from people who know more about the topic. Any suggestion is valid to me at this point rlly <3

Thank you in advance.
Reply
Breached
Member
Posts: 47
Threads: 1
Joined: Mar 2024
Reputation: 0
#2
Mar 19, 2024, 05:45 AM
(Mar 19, 2024, 04:48 AM)gayass Wrote: So, i'm trying to find a way to make my targets API show me more information about its GraphQL configs and stuff, but introspection is off, so my job became a little more difficult, so i wanted help from people who know more about the topic. Any suggestion is valid to me at this point rlly <3

Thank you in advance.

I am no expert myself and I started learning about hacking GraphQL recently, I think you can try some tricks here
https://portswigger.net/web-security/gra...n-defenses
also
https://book.hacktricks.xyz/network-serv...rospection

I hope this helps and happy hacking!.
Reply
Breached
Member
Posts: 38
Threads: 6
Joined: Feb 2024
Reputation: 0
#3
Mar 19, 2024, 01:54 PM
(Mar 19, 2024, 05:45 AM)leetone Wrote:
(Mar 19, 2024, 04:48 AM)gayass Wrote: So, i'm trying to find a way to make my targets API show me more information about its GraphQL configs and stuff, but introspection is off, so my job became a little more difficult, so i wanted help from people who know more about the topic. Any suggestion is valid to me at this point rlly <3

Thank you in advance.

I am no expert myself and I started learning about hacking GraphQL recently, I think you can try some tricks here
https://portswigger.net/web-security/gra...n-defenses
also
https://book.hacktricks.xyz/network-serv...rospection

I hope this helps and happy hacking!.

tyy! i'll have a look Big Grin
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  ✅ Top 10 Google Dorks For SQL Injections NextSoftGroup 12 425 Yesterday, 01:54 PM
Last Post: V1nh
  Amex 5.07.2024 SCAMPAGE WITH ADMIN PANEL xls 15 1,899 Yesterday, 10:04 AM
Last Post: Isolatedforsex
  Bypassing Modern AV (Metasploit Method) godco99 8 478 May 05, 2026, 07:54 PM
Last Post: manguberdi
  [FREE] Database Searcher Telegram odanbtw 1,019 86,298 May 05, 2026, 07:48 PM
Last Post: manguberdi
  ✨ [TUTORIAL] MAKE A PHISHING PAGE⚡STEAL LOGIN CREDENTIALS FROM ANY WEBSITE ✨ MINDHUNTER 274 19,598 May 05, 2026, 06:20 PM
Last Post: pddemerde

Forum Jump:


 Users browsing this forum: 1 Guest(s)